Meraki

JonnyAwesome

Hi Everyone!

The challenge I've found myself in is my company has 2 separate Meraki Organizations. 1 of these Orgs has been successfully configured with SSO using "dashboard.meraki.com" with our Entra IdP and we're unsure of how to set the second Org for SSO using the same Entra IdP.

What we're trying to achieve is ...

User1 with Group1 authenticates to dashboard.meraki.com and can see Org1

User2 with Group2 authenticates to dashboard.meraki.com and can see Org2

Just by looking at it doesn't seem possible as the entry ID of "dashboard.meraki.com" is identical which I believe would conflict. Keen to hear any thoughts/comments and solutions!

JonnyAwesome

From some initial research it looks like I could just add another Reply URL to the existing Enterprise App in Entra ID where the existing SSO setup is?

Ryan_Miles

Use the subdomain option to enter a unique name for each Org

https://documentation.meraki.com/Platform_Management/Dashboard_Administration/Operate_and_Maintain/M...

On the Entra side use that unique name as the entity ID for each Ent app you create for each Meraki Org.

Example of my config

mlefebvre1

Use the same thumbprint on every org and control access using the SAML Roles

User 1 gets group "Org Type 1 Admin"

User 2 gets group "Org Type 2 Admin"

Org 1 has "Org Type 1 Admin" on it as a role and does NOT have "Org Type 2 Admin"

Org 2 has "Org Type 2 Admin" on it as a role and does NOT have "Org Type 1 Admin" on it as a role.

User 1 will get access just to org 1, User 2 will get access just to org 2. The thumbprint must match AND there must be a matching role to grant access on the org.

Meraki

Community

Setting up SSO for separate Meraki Dashboards for the 1 Company

Setting up SSO for separate Meraki Dashboards for the 1 Company